Hacker News new | ask | show | jobs
by Bud 1270 days ago
>Shit, if that was a real concern you would have to be a complete idiot to use LastPass in the first place.

What are you even talking about? Of course it's a real concern. That exact kind of thing happens constantly. And of course, the nature of the concern here involves us not knowing that LastPass was fucking up. LastPass might not even know. It's not like companies regularly announce in public, "hey, customers! We're actually massive fuckups, we know it, we haven't fixed it, and we just thought you'd like to know!"
1 comments
rosnd 1270 days ago
If you don't trust LastPass to encrypt your passwords properly, why would you use it at all?

>That exact kind of thing happens constantly

Like when?

>And of course, the nature of the concern here involves us not knowing that LastPass was fucking up.

What do you mean? The cryptography used by LastPass is very well understood.

link
paulpauper 1270 days ago
well understood and badly implemented, which is the same as no encryption
link
rosnd 1270 days ago
How is the LastPass encryption badly implemented?

In your other comment you claimed it was "likely" to be badly implemented, but here you state it as a fact. What's up with that?

link